deployment-automation
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill enforces container security best practices by utilizing multi-stage Docker builds to reduce image size and configuring a non-root user (nodejs) to run the application.
- [SAFE]: Credential management is handled securely by instructing the user to use GitHub Actions Secrets, Kubernetes Secrets, and Vercel environment variables instead of hardcoding sensitive information.
- [SAFE]: External dependencies are restricted to official GitHub Actions and well-known industry tools (such as Vercel CLI and Codecov), which are appropriate for the skill's stated purpose.
- [SAFE]: Automated scripts for deployment and environment switching (deploy.sh and switch.sh) perform standard infrastructure operations without suspicious command execution or privilege escalation.
- [SAFE]: The skill includes explicit safety constraints, such as prohibiting the commitment of secrets to Git and requiring the use of production environment modes.
Audit Metadata